Rehoboth McKinley Christian Health Care Services

Rehoboth McKinley Christian Health Care Services operates as a healthcare provider, functioning as a hospital affiliated with the Navajo Nation. Its services are centered on delivering medical care to the community it serves, with its location in New Mexico placing it within the sovereign territory of the Navajo Nation. This affiliation defines its primary market and patient population, situating it as a critical health resource for that specific indigenous community. The organization's identity is closely tied to this role, as evidenced by reporting that explicitly describes it as a Navajo Nation-affiliated hospital. No further details regarding its specific medical specialties, operational scale, or number of facilities are provided in the available information.

The organization's recent history is notably defined by a significant cybersecurity incident. In February 2021, it was targeted by a ransomware attack attributed to the Conti threat group. This attack resulted in the theft of sensitive data, including patient protected health information, demographic details, and copies of personal identification documents like driver's licenses and a Social Security card. The attackers subsequently publicly leaked samples of this stolen data. At the time of reporting, the healthcare provider had not issued a public acknowledgment or statement confirming the attack on its website, and the breach was not yet listed in official federal breach databases. This event underscores the severe risk posed by ransomware to healthcare entities handling highly sensitive personal data. The incident highlights the operational and reputational challenges faced by the organization following a major data compromise. The public leakage of patient information, including medical documentation and personal identifiers, represents a profound violation of patient trust and privacy. The lack of immediate, transparent communication to affected individuals was noted as a concerning gap in the incident response. This cybersecurity event forms a substantial part of the organization's documented recent operational context.